Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Edge Articles

09:20 AM
Joan Goodchild
Joan Goodchild
Edge Features

10 Tough Questions CEOs Are Asking CISOs

CEOs today are prepared with better questions than 'Are we secure,' and chief information security officers had better be ready to answer.

Are We Protected Against a Breach?

Many business executives think having a CISO will "unequivocally" prevent breaches from occurring, says James Nelson, vice president of information security at Illumio. "Unfortunately, this is the wrong way to think about this challenge," he says.

Faced with this question, CISOs should be prepared to explain that security is a holistic, ongoing, organizationwide effort and list the different factors that will help prevent (but not guarantee) a breach from occurring.

"The primary goal of security leaders today should be to help his or her organization to be successful through security. It requires technical expertise, stakeholder management, political acumen, communication skills, and more to do the CISO job well," says Nelson.

"For CISOs, this is one of those 'keep-you-up-at night' questions," adds Ed Bellis, CTO and co-founder of Kenna Security and former CISO for Orbitz. "The Equifax breach is the poster child for this, but apply the thinking to your company or organization. Where are your biggest blind spots, and what would it take to eliminate them?"

(Continued on next page)

Joan Goodchild is a veteran journalist, editor, and writer who has been covering security for more than a decade. She has written for several publications and previously served as editor-in-chief for CSO Online. View Full Bio

4 of 11
Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Name That Toon: The Devil You Know?
Flash Poll